EU MDR Post-Market Surveillance: A Complete Compliance Guide

TLDR

EU MDR Regulation (EU) 2017/745 transformed post-market surveillance from a passive reporting activity into an active, data-driven lifecycle obligation. Articles 83 through 86 define a mandatory system structure: a documented PMS system, a device-specific PMS plan, periodic PMS reports for Class I devices, and Periodic Safety Update Reports (PSURs) for Class IIa through III devices. The December 2025 MDCG 2025-10 guidance provides the most detailed official interpretation of these obligations to date, clarifying how to build, operate, and integrate a compliant PMS system within your QMS. This guide covers everything manufacturers need to know.

What Is Post-Market Surveillance Under EU MDR?

Post-market surveillance is the ongoing, proactive process of collecting and analyzing real-world performance data from medical devices once they are placed on the EU market. Under EU MDR (Regulation 2017/745/EU), PMS is not a reactive complaint-handling function. It is a systematic, proactive process integrated into the manufacturer's Quality Management System to continuously verify that devices remain safe, perform as intended, and meet general safety and performance requirements throughout their entire market lifetime.

Article 10(10) of the MDR mandates that every manufacturer establish, document, implement, maintain, update, and improve a PMS system appropriate to the risk class and type of device. This obligation applies regardless of device class, from Class I to Class III.

The critical shift from the predecessor Medical Device Directive (MDD) is one of intent. Under the MDD, PMS was often treated as a periodic reporting exercise. Under MDR, it is a living system that feeds back into clinical evaluation, risk management, design control, and technical documentation updates continuously.

Why EU MDR Raised the PMS Bar

The increased PMS rigor under MDR was a direct response to real-world device safety failures. The PIP breast implant scandal, metal-on-metal hip replacement complications, and surgical mesh problems all revealed a systemic failure: devices with deteriorating real-world performance stayed on the market too long because post-market data was not systematically collected, analyzed, or escalated to corrective action.

MDR's response was structural. Under the regulation:

• PMS plans are device-specific, not general system documents
• Notified Bodies have expanded oversight access to PMS reports and PSURs during surveillance audits
• PSUR update frequencies are defined by risk class with firm deadlines
• Post-Market Clinical Follow-Up (PMCF) is required for most devices unless explicitly justified otherwise
• Proactive data gathering from multiple defined sources is mandatory

Manufacturers who build rigorous PMS systems gain a measurable advantage in Notified Body interactions and demonstrate the kind of proactive safety governance that regulators now explicitly expect.

The 4 Core PMS Articles: 83 Through 86

Article 83: The PMS System

Article 83 defines the foundational requirement: every manufacturer must establish, document, implement, maintain, and continuously improve a PMS system. This system must actively gather post-market data from defined sources, analyze it for safety signals and performance trends, and feed findings back into risk management, clinical evaluation, and QMS processes.

The PMS system is not a document. It is a connected operational process that links complaint handling, vigilance reporting, PMCF, field safety corrective actions, and CAPA into a coherent feedback loop.

Article 84: The PMS Plan

Article 84 requires a documented PMS plan for each device, specifying:

• What data will be gathered and from which specific sources
• The methods and processes for data collection, storage, and analysis
• Defined threshold criteria that trigger CAPA or field safety corrective action
• Explicit reference to the clinical evaluation and risk management processes that PMS data feeds into

The PMS plan is a living document. When PMS data generates new risk insights, the plan updates accordingly. Notified Bodies review PMS plans during initial certification audits and at every surveillance audit, making plan quality a direct factor in certification outcomes.

Article 85: The PMS Report (PMSR)

Article 85 applies to Class I devices. Manufacturers must document PMS findings in a Post-Market Surveillance Report that summarizes results, analyzes conformity with general safety and performance requirements, presents a benefit-risk determination, and records any CAPA taken. The PMSR must be updated when PMS activities generate new relevant findings and must be available to competent authorities upon request.

Article 86: The Periodic Safety Update Report (PSUR)

Article 86 applies to Class IIa, IIb, and III devices and represents the most rigorous PMS reporting obligation under MDR.

PSURs must be updated at the following minimum frequencies:

• Class IIa: At least every 2 years
• Class IIb and III: At least annually

Each PSUR must include: the conclusions of the benefit-risk determination, main findings from PMCF, volume of sales and estimated population using the device, and a complete summary of PMS data analyzed with rationale for any corrective or preventive actions taken.

Class IIb and III PSURs must be submitted to the Notified Body. Class IIa PSURs must be available to the Notified Body on request. Both are reviewed during Notified Body surveillance activities.

What Data Sources Feed a PMS System?

A compliant PMS system draws from a defined, broad set of data sources. MDCG 2025-10 provides detailed guidance on the minimum expected inputs:

Reactive data sources:

• Customer complaints and device user feedback
• Vigilance reports from competent authorities
• Post-market adverse events reported by users, patients, or healthcare institutions
• Field safety corrective action (FSCA) data from similar devices on the market

Proactive data sources:

• Systematic literature searches covering the device type, equivalent devices, and relevant clinical areas
• PMCF studies, device registries, and structured patient or user surveys
• Market surveillance data from competent authorities and Notified Bodies
• Analysis of returned, repaired, or scrapped devices
• Feedback networks from distributors and healthcare providers

Every data source must be described in the PMS plan, including search methodology, frequency, responsible person, and the process by which findings are assessed against defined threshold criteria.

Post-Market Clinical Follow-Up (PMCF)

PMCF is a subset of PMS activities focused specifically on post-market clinical data collection. Under EU MDR Annex XIV Part B, PMCF is required unless the manufacturer explicitly justifies why it is not applicable to a specific device.

PMCF activities include:

• Prospective clinical investigations using the device in its intended patient population
• Clinically relevant data from literature reviews, device registries, or structured user surveys
• Structured feedback programs with healthcare institutions using the device

PMCF findings must feed directly into the clinical evaluation and Clinical Evaluation Report (CER), the technical documentation, and the risk management file. MDCG 2025-10 reinforces this closed-loop requirement: PMCF is not a standalone project but a continuous input into the full technical documentation ecosystem that sustains the device's CE marking.

Vigilance: Serious Incidents and FSCAs

Vigilance reporting under EU MDR (Articles 87-90) operates in parallel with PMS but responds to specific triggering events. Manufacturers must report to the competent authority of the relevant Member State:

• Serious incidents (events that led or could lead to patient death, serious deterioration in health, or serious public health threat): within 15 days of becoming aware
• Field Safety Corrective Actions (FSCAs): reported through a Field Safety Notice (FSN) before implementation wherever possible

An adverse event investigation that identifies a device-related root cause must trigger both a vigilance report and a CAPA. MDCG 2025-10 makes clear that the PMS system must define explicit processes for identifying potential serious incidents within complaint and feedback data streams, with documented escalation criteria and named responsible persons.

Vigilance data is also a required input into the PSUR. Unreported or delayed incidents create gaps not only in vigilance compliance but in the accuracy of the periodic safety update analysis itself.

MDCG 2025-10: What the December 2025 Guidance Adds

The Medical Device Coordination Group published MDCG 2025-10 in December 2025, providing the most comprehensive official interpretation of EU MDR PMS requirements to date. Key guidance elements that manufacturers must address:

• QMS integration: MDCG 2025-10 reinforces that PMS must be embedded within and connected to the full QMS, with defined interfaces to risk register processes, clinical evaluation, CAPA, and technical documentation. Standalone PMS binders do not meet MDR intent.
• Active, not reactive, surveillance: Guidance emphasizes that waiting for complaints to arrive does not satisfy the MDR's proactivity requirement. Manufacturers must design systems that actively seek real-world performance data.
• Quantified thresholds and triggers: MDCG 2025-10 expects manufacturers to define quantitative or qualitative threshold criteria that trigger CAPA or FSCA initiation when breached. Vague assessment language is not sufficient.
• IVD applicability: The guidance covers both MDR (2017/745) and IVDR (2017/746), applying the same PMS framework to in vitro diagnostic devices.
• Proportionality: PMS plans, reports, and PMCF scope should be proportionate to the device's risk class, intended population, and complexity of clinical use.

Manufacturers who have not yet reviewed and updated their PMS plans in light of MDCG 2025-10 face potential major findings at their next Notified Body surveillance audit.

Integrating PMS Into Your QMS

A PMS system that operates in isolation produces compliance artifacts but not compliance outcomes. True MDR conformity requires PMS to function as a connected element within the full QMS.

PMS findings must have documented pathways to:

• Risk management: New safety signals and threshold breaches update the risk file and the benefit-risk determination in the CER
• Clinical evaluation: PMCF data and real-world evidence feed into the CER on the cadence defined in the PMS plan
• CAPA: Identified trends or threshold breaches initiate formal root cause investigations and deviation CAPAs with defined timelines
• Technical documentation: Updated risk files and clinical evaluations require corresponding updates to the technical documentation supporting CE marking
• Management review: PMS trend data and PSUR conclusions should appear as standing agenda items

Managing these connections across disconnected spreadsheets, email threads, and shared drives creates version control failures, traceability gaps, and missed escalation windows. An integrated QMS platform that connects PMS data to CAPA, clinical evaluation, risk management, and document control removes these gaps structurally.

How Cloudtheapp Supports EU MDR PMS Compliance

Building a compliant EU MDR PMS system on manual tools is both time-consuming and structurally fragile. Cloudtheapp's AI-powered QMS platform provides medical device manufacturers with an integrated environment for every PMS obligation:

• Complaint and adverse event capture linked directly to PMS analysis workflows and threshold monitoring
• PMCF data collection modules connected to clinical evaluation and CER management records
• CAPA initiation triggered automatically from PMS threshold breaches with full traceability
• PSUR and PMSR report generation with audit-ready traceability back to underlying PMS data
• Risk management integration: PMS findings update risk assessments in real time
• Management review dashboards surfacing PMS trends alongside CAPA performance and audit results

Because Cloudtheapp is validated per FDA QMSR, ISO 13485:2016, and ISO 9001, every PMS record generated in the platform meets both EU MDR and global QMS standards. Manufacturers operating in EU and US markets maintain a single compliant record set rather than parallel systems.

Ready to build a PMS system that holds up under MDCG 2025-10 and Notified Body scrutiny? Request a demo to see how Cloudtheapp connects every EU MDR PMS obligation end to end.

Conclusion

EU MDR post-market surveillance is a mandatory, proactive, and deeply interconnected compliance obligation. Articles 83 through 86 define the structural requirements. MDCG 2025-10 clarifies what "good" looks like in practice. And an integrated QMS is the only architecture that sustains these requirements without creating unsustainable manual overhead.

Manufacturers who treat PMS as a living system rather than a periodic reporting task produce better safety outcomes, pass Notified Body scrutiny more consistently, and build the real-world evidence base that the next generation of clinical evaluation demands.